Powering more than 2 billion connections every day, Mitel helps businesses connect, collaborate and take care of customers.
Since its establishment in 1854, Telecom Egypt has played a pivotal role in driving growth within the local ICT market capitalizing on its vast infrastructure, which is one of the largest in the region. Its vast domestic and international infrastructure has helped it serve various customer groups including consumers, enterprises, domestic and international carriers. Through its five business units Telecom Egypt boasts a consolidated top-line of EGP 22.8bn. In September 2017, Telecom Egypt introduced its new retail brand “WE” with the launch of its mobile services. In a year from launch, “WE” offered the market’s first fully integrated bundle combining all of its consumer services fixed and mobile, voice and data in one bill taking its first step towards full convergence and demonstrating its agility as a key player in the telecommunications industry. By end of 2018, Telecom Egypt fixed voice customers grew to 7.9mn of which 5.2mn enjoyed fixed broadband connectivity, while mobile customers reached 3.9mn. Telecom Egypt’s wholesale unit provides infrastructure, transmission and international voice services to local mobile operators and internet service providers. In addition, it provides international carries capacities on one of the largest submarine cable networks in the world.
Security & Compliance Standards Overview
No incidents recorded for Mitel in 2025.
No incidents recorded for Telecom Egypt in 2025.
Mitel cyber incidents detection timeline including parent company and subsidiaries
Telecom Egypt cyber incidents detection timeline including parent company and subsidiaries
Last 3 Security & Risk Events by Company
MCP Server Kubernetes is an MCP Server that can connect to a Kubernetes cluster and manage it. Prior to 2.9.8, there is a security issue exists in the exec_in_pod tool of the mcp-server-kubernetes MCP Server. The tool accepts user-provided commands in both array and string formats. When a string format is provided, it is passed directly to shell interpretation (sh -c) without input validation, allowing shell metacharacters to be interpreted. This vulnerability can be exploited through direct command injection or indirect prompt injection attacks, where AI agents may execute commands without explicit user intent. This vulnerability is fixed in 2.9.8.
XML external entity (XXE) injection in eyoucms v1.7.1 allows remote attackers to cause a denial of service via crafted body of a POST request.
An issue was discovered in Fanvil x210 V2 2.12.20 allowing unauthenticated attackers on the local network to access administrative functions of the device (e.g. file upload, firmware update, reboot...) via a crafted authentication bypass.
Cal.com is open-source scheduling software. Prior to 5.9.8, A flaw in the login credentials provider allows an attacker to bypass password verification when a TOTP code is provided, potentially gaining unauthorized access to user accounts. This issue exists due to problematic conditional logic in the authentication flow. This vulnerability is fixed in 5.9.8.
Rhino is an open-source implementation of JavaScript written entirely in Java. Prior to 1.8.1, 1.7.15.1, and 1.7.14.1, when an application passed an attacker controlled float poing number into the toFixed() function, it might lead to high CPU consumption and a potential Denial of Service. Small numbers go through this call stack: NativeNumber.numTo > DToA.JS_dtostr > DToA.JS_dtoa > DToA.pow5mult where pow5mult attempts to raise 5 to a ridiculous power. This vulnerability is fixed in 1.8.1, 1.7.15.1, and 1.7.14.1.
